86 matches found
CVE-2018-5836
In wmananrspeventhandler in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05, the datalen value is received from firmware and not properly validated which could potentially lead to an out-of-bounds access...
CVE-2017-14872
While flashing a meta image, a buffer over-read can potentially occur when the number of images are out of the maximum range of 32 in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05...
CVE-2018-5832
Due to a race condition in a camera driver ioctl handler in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05, a Use After Free condition can occur...
CVE-2018-5849
Due to a race condition in the QTEECOM driver in all Android releases from CAF Android for MSM, Firefox OS for MSM, QRD Android using the Linux Kernel, when more than one HLOS client loads the same TA, a Use After Free condition can occur...
Out-of-bounds
In the camera driver, an out-of-bounds access can occur due to an error in copying region params from user space in all Android releases from CAF Android for MSM, Firefox OS for MSM, QRD Android using the Linux Kernel...
CVE-2018-3571
In the KGSL driver in all Android releases from CAF Android for MSM, Firefox OS for MSM, QRD Android using the Linux Kernel, a Use After Free condition can occur when printing information about sparse memory allocations...
CVE-2017-15857
In the camera driver, an out-of-bounds access can occur due to an error in copying region params from user space in all Android releases from CAF Android for MSM, Firefox OS for MSM, QRD Android using the Linux Kernel...
DEBIAN-CVE-2018-5848
In the function wmisetie, the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the 'ielen' argument can cause a buffer overflow in all Android releases from CAF Android for MSM, Firefox OS for MSM, QRD Android using the Linux Kernel...
Design/Logic Flaw
In all Qualcomm products with Android releases from CAF using the Linux kernel, in a KGSL IOCTL handler, a Use After Free Condition can potentially occur...
CVE-2017-17764
In all Qualcomm products with Android releases from CAF using the Linux kernel, the numfailureinfo value from firmware is not properly validated in wmarxaggrfailureeventhandler so that an integer overflow vulnerability in a buffer size calculation may potentially lead to a buffer overflow...
CVE-2017-10996
In all Qualcomm products with Android releases from CAF using the Linux kernel, out of bounds access is possible in cshow, due to compathwcapstr not being NULL-terminated. This error is not fatal, however the device might crash/reboot with memory violation/out of bounds access...
CVE-2017-9676
In all Qualcomm products with Android releases from CAF using the Linux kernel, potential use after free scenarios and race conditions can occur when accessing global static variables without using a lock...
CVE-2017-11040
In all Qualcomm products with Android releases from CAF using the Linux kernel, when reading from sysfs nodes, one can read more information than it is allowed to...
CVE-2017-9720
In all Qualcomm products with Android releases from CAF using the Linux kernel, due to an off-by-one error in a camera driver, an out-of-bounds read/write can occur...
CVE-2017-11002
In all Qualcomm products with Android releases from CAF using the Linux kernel, while processing a vendor sub-command, a buffer over-read can occur...
CVE-2017-8280
In all Qualcomm products with Android releases from CAF using the Linux kernel, during the wlan calibration data store and retrieve operation, there are some potential race conditions which lead to a memory leak and a buffer overflow during the context switch...
CVE-2017-8278
In all Qualcomm products with Android releases from CAF using the Linux kernel, while reading audio data from an unspecified driver, a buffer overflow or integer overflow could occur...
The vulnerability of the system call in the TrustZone of the Android CAF-release operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the TrustZone system call in the Android CAF-release operating system arises from the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...
The vulnerability of the Android CAF-release operating system, related to configuration errors, allows a perpetrator to compromise privacy, integrity, and accessibility.
The vulnerability of the Android CAF-release operating system is related to configuration errors. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information when loading the external application QTEE...
The vulnerability of the system call in the TrustZone of the Android CAF-release operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the TrustZone-based system call in the Android CAF-release operating system is related to pointer swapping errors. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...